SOC & IT Security (Manager)

Job Summary:

We are seeking an experienced and highly skilled SOC & IT Security Manager to lead our Security Operations Center and manage overall cybersecurity activities. The ideal candidate will oversee threat monitoring, incident response, compliance, and IT infrastructure security. This role requires strong leadership, deep technical expertise, and extensive experience handling real-world cyber incidents.

Key Responsibilities:

1. Oversee end-to-end SOC operations, including monitoring, detection, triage, incident response, and recovery.

2. Supervise and mentor a team of SOC analysts, IT security engineers, and incident responders. 3. Conduct incident analysis, root cause analysis (RCA), log analysis, and suggest preventive measures.

4. Manage daily IT infrastructure security operations across systems, networks, and cloud environments.

5. Develop and implement security policies, playbooks, and standard operating procedures. 6. Ensure compliance with industry standards and regulatory frameworks (ISO 27001, NIST, PCI-DSS, GDPR, CERT-In, NCIIPC).

7. Oversee deployment and management of security tools (SIEM, EDR, IDS/IPS, vulnerability scanners, etc.)

8. Lead threat hunting activities and investigate suspicious activities using MITRE ATT&CK framework.

Required Qualification:

1. B.E/B.Tech / MCA / MBA / PG in Computer Science or IT-related fields with (Minimum 60% aggregate / First Division).

2. CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager).

3. Additional certifications in SIEM, SOC operations, incident response, cloud security, or threat intelligence preferred.

4. Deep knowledge of security frameworks: ISO 27001, NIST, CIS, MITRE ATT&CK.

5. Experience in critical sectors such as BFSI, Telecom, Power & Energy, Government, or IT Services.

6. Hands-on experience with SIEM, EDR, IDS/IPS, and vulnerability management platforms.

Required Skills:

1. Strong experience managing Security Operations Centers (SOC).

2. Expertise in incident handling, threat monitoring, and cyber forensics.

3. Strong understanding of endpoint, network, and cloud security (AWS/Azure/GCP). 4.Experience handling real-world incidents such as malware attacks, breaches, DDoS, etc.

5. Exposure to governance, risk, and compliance (GRC) initiatives.

6. Experience writing security reports, dashboards, policies, and executive summaries.

Job Type: Full-time

Benefits:

• Provident Fund

Work Location: In person